Test ID:	1.3.6.1.4.1.25623.1.0.121076
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201311-17
Summary:	Gentoo Linux Local Security Checks GLSA 201311-17
Description:	Summary: Gentoo Linux Local Security Checks GLSA 201311-17 Vulnerability Insight: Multiple vulnerabilities have been discovered in Perl. Please review the CVE identifiers referenced below for details. Solution: Update the affected packages to the latest available version. CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5302 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html Bugtraq: 20090120 rPSA-2009-0011-1 perl (Google Search) http://www.securityfocus.com/archive/1/500210/100/0/threaded Debian Security Information: DSA-1678 (Google Search) http://www.debian.org/security/2008/dsa-1678 http://www.mandriva.com/security/advisories?name=MDVSA-2010:116 http://www.gossamer-threads.com/lists/perl/porters/233695#233695 http://www.openwall.com/lists/oss-security/2008/11/28/2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11076 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6890 http://www.redhat.com/support/errata/RHSA-2010-0458.html http://secunia.com/advisories/32980 http://secunia.com/advisories/33314 http://secunia.com/advisories/40052 SuSE Security Announcement: SUSE-SR:2009:004 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html http://www.ubuntu.com/usn/usn-700-1 http://www.ubuntu.com/usn/usn-700-2 XForce ISS Database: perl-filepath-symlink(47043) https://exchange.xforce.ibmcloud.com/vulnerabilities/47043 Common Vulnerability Exposure (CVE) ID: CVE-2008-5303 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6680 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9699 XForce ISS Database: filepath-rmtree-symlink(47044) https://exchange.xforce.ibmcloud.com/vulnerabilities/47044 Common Vulnerability Exposure (CVE) ID: CVE-2010-1158 55314 http://secunia.com/advisories/55314 [oss-security] 20100408 CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605) http://www.openwall.com/lists/oss-security/2010/04/08/9 [oss-security] 20100414 Re: CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605) http://www.openwall.com/lists/oss-security/2010/04/14/3 http://bugs.gentoo.org/show_bug.cgi?id=313565 http://perldoc.perl.org/perl5100delta.html https://bugzilla.redhat.com/show_bug.cgi?id=580605 Common Vulnerability Exposure (CVE) ID: CVE-2011-0761 BugTraq ID: 47766 http://www.securityfocus.com/bid/47766 Bugtraq: 20110509 TSSA-2011-03 - Perl : multiple functions null pointer dereference uppon parameters injection (Google Search) http://www.securityfocus.com/archive/1/517916/100/0/threaded http://www.toucan-system.com/advisories/tssa-2011-03.txt http://securitytracker.com/id?1025507 http://securityreason.com/securityalert/8248 XForce ISS Database: perl-functions-dos(67355) https://exchange.xforce.ibmcloud.com/vulnerabilities/67355 Common Vulnerability Exposure (CVE) ID: CVE-2011-1487 43921 http://secunia.com/advisories/43921 44168 http://secunia.com/advisories/44168 47124 http://www.securityfocus.com/bid/47124 DSA-2265 http://www.debian.org/security/2011/dsa-2265 FEDORA-2011-4610 http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057891.html FEDORA-2011-4631 http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057971.html MDVSA-2011:091 http://www.mandriva.com/security/advisories?name=MDVSA-2011:091 SUSE-SR:2011:009 http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html [oss-security] 20110401 CVE Request -- perl -- lc(), uc() routines are laundering tainted data http://openwall.com/lists/oss-security/2011/04/01/3 [oss-security] 20110404 Re: CVE Request -- perl -- lc(), uc() routines are laundering tainted data http://openwall.com/lists/oss-security/2011/04/04/35 http://perl5.git.perl.org/perl.git/commit/539689e74a3bcb04d29e4cd9396de91a81045b99 http://rt.perl.org/rt3/Public/Bug/Display.html?id=87336 https://bugzilla.redhat.com/show_bug.cgi?id=692844 https://bugzilla.redhat.com/show_bug.cgi?id=692898 perl-laundering-security-bypass(66528) https://exchange.xforce.ibmcloud.com/vulnerabilities/66528
Copyright	Copyright (C) 2015 Eero Volotinen

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.